CVE-2016-8562
HIGHCISA KEVEPSS 88th pctlDescription
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.
CVSS v3 Vector
Exploitability
Impact
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploit Intelligence
Elevated risk: more likely to be exploited than 88% of all known CVEs.
Siemens SIMATIC CP 1543-1 Improper Privilege Management Vulnerability
An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor (CP) that allows a privileged attacker to remotely cause a denial of service.
Apply updates per vendor instructions.
Remediation due: 2022-03-24
References
- http://www.securityfocus.com/bid/94436
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-672373.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-672373.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-327-01
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-8562
Find and fix vulnerabilities across your fleet
TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.
Start freeThis product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-04-21.